[CentOS] Self-signed certificates
Thomas E Dukes
edukes at alltel.net
Mon Jan 23 23:46:37 UTC 2006
> -----Original Message-----
> From: centos-bounces at centos.org
> [mailto:centos-bounces at centos.org] On Behalf Of Johnny Hughes
> Sent: Monday, January 23, 2006 6:23 PM
> To: CentOS ML
> Subject: Re: [CentOS] Self-signed certificates
>
> On Mon, 2006-01-23 at 18:16 -0500, Jim Perrin wrote:
> > > Hmmm. I'll give that a try. Not really interested in the error
> > > about being 'self-signed' (issuing authority) but just
> want the name
> > > to be right and the security to be there.
> > >
> > > Will try and let you know.
> >
> > http://httpd.apache.org/docs/2.0/vhosts/name-based.html
> >
> > Note the line near the top that says "Name-based virtual hosting
> > cannot be used with SSL secure servers because of the nature of the
> > SSL protocol." And also
> > http://httpd.apache.org/docs/2.0/ssl/ssl_faq.html#vhosts
> >
> > The first just says you can't. the second provides a more detailed
> > reason. The way I gave you is really the only way to
> accomplish what
> > you're doing with mod_ssl etc.
> >
>
> I spent much time around trying to figure out a way to do
> this ... only way I found ... do it by IP ... each SSL cert
> needs to be on a different IP
You maybe correct but up to a month or so ago I wasn't able to even get SSL
working on more than one virtual domain at a time. The certificate may have
the wrong name but it is working.
How do you do shared certificate?
>
More information about the CentOS
mailing list